4 matches found
OpenSSH < 2.1.1 UseLogin Local Privilege Escalation
Binary data 1991.prm...
OpenSSH UseLogin option allows remote execution of commands as root
Overview Versions of OpenSSH prior to 2.1.1 current circa June, 2000 allow a remote attacker to execute arbitrary commands with the privileges of sshd, typically root. Description OpenSSH is a free implementation of versions 1 and 2 of the SSH protocol. If sshd is configured with the UseLogin...
CVE-2000-0525
OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon...
OpenSSH < 2.1.1 UseLogin Local Privilege Escalation
According to its banner, the remote host appears to be running OpenSSH version older than 2.1.1. Such versions are reportedly affected by a local privilege esclation vulnerability. If the UseLogin option is enabled, then sshd does not switch to the uid of the user logging in. Instead, sshd relies...